You are viewing a plain text version of this content. The canonical link for it is here.

Posted to notifications@dubbo.apache.org by "chickenlj (via GitHub)" <gi...@apache.org> on 2023/03/24 10:32:30 UTC

[GitHub] [dubbo-go] chickenlj commented on issue #2257: Security 认证鉴权

chickenlj commented on issue #2257:
URL: https://github.com/apache/dubbo-go/issues/2257#issuecomment-1482583600

   As a very important feature of Dubbo3, Dubbo is trying to provide the ability to build a zero-trust microservice cluster. 
   
   Dubbo-go,  as a data plane component that might be deployed in the cluster, should make sure it gives full support to the security mechanism. By checking the documentation or even the code, we find basic TLS has already been provided which is a good start, but there's still lots of work need to be done in order to meet the security requirements. 
   
   Here are some possible things that the framework needs to be done to work with the Dubbo security system.
   * Automatic discovery of certificates
   * Automatic rotation of certificates
   * Authentication Policies
   * Authorization Policies


-- 
This is an automated message from the Apache Git Service.
To respond to the message, please log on to GitHub and use the
URL above to go to the specific comment.

To unsubscribe, e-mail: notifications-unsubscribe@dubbo.apache.org

For queries about this service, please contact Infrastructure at:
users@infra.apache.org


---------------------------------------------------------------------
To unsubscribe, e-mail: notifications-unsubscribe@dubbo.apache.org
For additional commands, e-mail: notifications-help@dubbo.apache.org